Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/SktZdd9_gqv7RnWiadVHnTNaQBw.roa
File: SktZdd9_gqv7RnWiadVHnTNaQBw.roa (raw, json)
Hash identifier: I4FIj8ixHHm1FwpTTOtOKXCB0LeoUxBWDaIMj6pFKS0=
Subject key identifier: 4A:4B:59:75:DF:7F:82:AB:FB:46:75:A2:69:D5:47:9D:33:5A:40:1C
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 099A
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/SktZdd9_gqv7RnWiadVHnTNaQBw.roa
Signing time: Wed 29 Sep 2021 02:42:32 +0000
ROA not before: Wed 29 Sep 2021 02:42:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9674
IP address blocks: 211.77.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2458 (0x99a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 29 02:42:32 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4A4B5975DF7F82ABFB4675A269D5479D335A401C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e2:e4:98:bd:6d:5d:a2:45:01:d7:5d:b8:1b:
e2:fe:80:23:19:1c:21:35:76:71:ad:a0:77:33:b8:
3d:63:e8:17:e7:a4:63:bd:c2:6f:89:ca:4c:dc:e6:
ff:fe:35:45:1a:6c:77:1e:37:80:5a:7e:89:bb:89:
8e:06:7d:c2:4e:f3:71:b2:91:26:89:38:13:8a:a5:
69:bd:c0:a3:86:88:5e:2b:07:ba:53:20:4d:5c:44:
cb:6a:9a:ac:50:c1:22:8b:5c:e3:da:ef:1f:03:2c:
ba:20:52:e3:73:d4:9b:f3:53:fd:d9:03:5b:27:d5:
1a:f8:09:5f:47:a7:1d:33:17:f8:c9:ac:95:7e:1e:
61:a1:b5:0f:ce:39:e3:5b:14:00:53:6a:da:4b:52:
fa:ff:bd:44:49:eb:a7:f1:b3:74:00:23:3e:6c:a5:
94:16:0a:e8:13:1f:eb:ac:da:9c:f8:18:a6:39:02:
f7:b5:66:2a:85:c6:0d:73:62:a6:b4:8a:3e:88:b5:
ab:e4:b2:d8:6c:2c:2d:ea:1b:82:5f:14:bf:67:69:
4b:58:d3:50:b7:e2:18:8b:97:0c:2a:0f:32:72:28:
cc:95:7a:40:4e:62:ee:c6:42:7a:69:81:d9:97:a5:
aa:65:f5:fe:f5:fd:20:37:8b:0d:ed:4e:a0:9e:6e:
6f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:4B:59:75:DF:7F:82:AB:FB:46:75:A2:69:D5:47:9D:33:5A:40:1C
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/SktZdd9_gqv7RnWiadVHnTNaQBw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.77.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3d:e1:1f:e4:1c:5e:fa:ec:f0:07:b5:09:c4:9f:ee:d0:db:6f:
38:f5:e0:f4:fa:9e:39:2e:94:4b:5c:d9:8d:1e:01:6f:b8:7e:
fa:f1:7b:2d:3f:92:6b:81:43:e1:f6:94:e9:17:ac:1b:b1:bf:
bf:c1:fa:1a:dc:a1:9e:b6:2e:d1:39:96:d2:c2:ae:84:20:f2:
63:1e:7f:97:7b:22:41:41:0c:b0:93:a9:20:cd:92:0a:01:d4:
26:f6:17:15:3e:c3:20:78:23:69:d1:4a:22:2e:5a:bc:c9:db:
db:a4:6b:d5:ba:4b:8e:fe:88:a6:cd:97:8c:17:42:4a:37:d8:
33:90:32:4c:5d:0a:11:19:94:a1:47:4d:51:c3:68:9a:4a:15:
10:18:d9:7e:60:30:2f:fb:ab:b9:76:7f:a6:10:29:3d:e7:e9:
2d:f9:6b:34:29:7d:ff:92:60:76:61:a0:90:5b:22:a9:f0:cc:
67:13:cf:17:3c:00:c5:0d:65:09:66:02:3c:fa:cb:13:21:69:
39:f6:95:f3:9d:ee:32:59:27:87:aa:ac:c8:b1:c2:60:c8:59:
ff:ab:f6:6b:c9:e1:b7:d2:bd:b3:a9:5a:8a:db:27:97:95:a3:
ea:a7:0a:1b:ee:cb:31:50:4d:30:1b:ef:4c:c2:d2:cb:5c:7f:
dd:fd:3a:cf
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgICCZowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMTA5Mjkw
MjQyMzJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDRBNEI1OTc1REY3Rjgy
QUJGQjQ2NzVBMjY5RDU0NzlEMzM1QTQwMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDC4uSYvW1dokUB1124G+L+gCMZHCE1dnGtoHczuD1j6BfnpGO9
wm+Jykzc5v/+NUUabHceN4Bafom7iY4GfcJO83GykSaJOBOKpWm9wKOGiF4rB7pT
IE1cRMtqmqxQwSKLXOPa7x8DLLogUuNz1JvzU/3ZA1sn1Rr4CV9Hpx0zF/jJrJV+
HmGhtQ/OOeNbFABTatpLUvr/vURJ66fxs3QAIz5spZQWCugTH+us2pz4GKY5Ave1
ZiqFxg1zYqa0ij6ItavksthsLC3qG4JfFL9naUtY01C34hiLlwwqDzJyKMyVekBO
Yu7GQnppgdmXpapl9f71/SA3iw3tTqCebm+tAgMBAAGjggHnMIIB4zAdBgNVHQ4E
FgQUSktZdd9/gqv7RnWiadVHnTNaQBwwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1NrdFpkZDlfZ3F2N1JuV2lhZFZIblRO
YVFCdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDTTTANBgkq
hkiG9w0BAQsFAAOCAQEAPeEf5Bxe+uzwB7UJxJ/u0NtvOPXg9PqeOS6US1zZjR4B
b7h++vF7LT+Sa4FD4faU6ResG7G/v8H6GtyhnrYu0TmW0sKuhCDyYx5/l3siQUEM
sJOpIM2SCgHUJvYXFT7DIHgjadFKIi5avMnb26Rr1bpLjv6Ips2XjBdCSjfYM5Ay
TF0KERmUoUdNUcNomkoVEBjZfmAwL/uruXZ/phApPefpLflrNCl9/5JgdmGgkFsi
qfDMZxPPFzwAxQ1lCWYCPPrLEyFpOfaV853uMlknh6qsyLHCYMhZ/6v2a8nht9K9
s6laitsnl5Wj6qcKG+7LMVBNMBvvTMLSy1x/3f06zw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org